Lista CVE 2020/11xxx

CVE nel gruppo: 11xxx

CVE-2020-11000 (Improper URL validation in GreenBrowser)

CVE-2020-11001 (Possible XSS attack in Wagtail)

CVE-2020-11002 (Remote Code Execution (RCE) vulnerability in dropwizard-validation)

CVE-2020-11003 (CSRF and DNS Rebinding in Oasis)

CVE-2020-11004 (SQL Injection in Admidio)

CVE-2020-11005 (Internal NCryptDecrypt method could be used externally from WindowsHello library.)

CVE-2020-11006 (Potential remote code execution in Shopizer)

CVE-2020-11007 (Negative charge in shopping cart possible in Shopizer)

CVE-2020-11008 (Malicious URLs can still cause Git to send a stored credential to the wrong server)

CVE-2020-11009 (IDOR can reveal execution data and logs to unauthorized user in Rundeck)

CVE-2020-11010 (SQL injection in Tortoise ORM)

CVE-2020-11011 (RCE via file upload in Phproject)

CVE-2020-11012 (Authentication bypass MinIO Admin API)

CVE-2020-11013 (lookup Function Information Discolosure in Helm)

CVE-2020-11014 (BIP LI01 output reordering may cause malformed SLP MINT transactions in Electron-Cash-SLP)

CVE-2020-11015 (Device Authentication Vulnerability in thinx-device-api IoT Device Management Server)

CVE-2020-11016 (Remote code execution in Message sending functionality in IntelMQ Manager)

CVE-2020-11017 (Double free in cliprdr_server_receive_capabilities in FreeRDP)

CVE-2020-11018 (Out of bound read in cliprdr_server_receive_capabilities in FreeRDP)

CVE-2020-11019 (Out of bound read in update_recv in FreeRDP)